|
|
CVE Reference: CVE-2006-0157 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-0157 |
|
|
Description: settings.php in Reamday Enterprises Magic News Plus 1.0.3 allows remote attackers to change the administrator password via a change action that specifies identical values for the passwd and admin_password parameters, then declares the new password string in the new_passwd and confirm_passwd parameters. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA18601 MISC http://downloads.securityfocus.com/vulnerabilities/exploits/MagicNewsPlus-pw-change.pl BID 16182 |
|
| Return to the previous page. |
